Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

9b25e9cd2b...1e.pdf

windows7-x64

1

9b25e9cd2b...1e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/02/2024, 07:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9b25e9cd2b071162740dc1746669fe1e.pdf

  • Size

    72KB

  • MD5

    9b25e9cd2b071162740dc1746669fe1e

  • SHA1

    e0e432f59f29444eb69e83e108184f8b1357e56f

  • SHA256

    a0ae269bf86c368fd199a1cf4fbb0352faf5ccf64bbdb3edd8b191c678c6c314

  • SHA512

    8c86ad261e9be15fcab906ccb96ec0bda8c87664e984b92de820888bfc558f31f6b8141dea980aa01bcb3d13e95d116a44fd60b5e3a47256b7d2b87844e4c349

  • SSDEEP

    1536:1VJz7CJnHGyq7RQO+fCiMkWG+CgHU47cP2zcB1eJL8mPOqmn+:VCJARN+fS7CyFfcKL3n

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9b25e9cd2b071162740dc1746669fe1e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a984b32d6712040e77b1affc393fc07f

    SHA1

    197db29606a99c860d2e1267212f1bb0b9d8e204

    SHA256

    f2310ee6980b9c7a53eaa47cc9d0dde78bb5477093ae27aa1fb4decb4d2cc8f2

    SHA512

    6c1c33f0212d3fa0e29eb19e3aeb111bc2102d0b81d3fffbe93574b806b06f902975b2d07deacc9c35947928e7bf12f25f062a68dc1406ee02027d835824ee72

    Download Submit